HIGH EXPOSURE
Sector: Cloud Infrastructure
Open MongoDB Ransoms
Targeted Breach
Not a single target, but an internet-wide mass extortion event. Automated scripts scanned the internet for MongoDB databases left without a password (the default configuration at the time). The scripts wiped the data and left a ransom note demanding Bitcoin.
Total Assets Compromised
28,000+ Databases Wiped
Primary Kill Chain Vector
Misconfigured Default Open Ports
Incident Timeline Marker
January 2017
Could your infrastructure sustain the same vector?
The exact techniques used in the Open MongoDB Ransoms breach are being commoditized on dark web forums. Run our simulated intelligence recon to calculate your immediate blast radius exposure in the Cloud Infrastructure sector.
Run Blast Radius CalculatorSecure Tool • No Card Required